Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D10C2BA608F811EE820922314AD9E6FC.roa
File: D10C2BA608F811EE820922314AD9E6FC.roa (raw, json)
Hash identifier: WBnZLJVmSOQh7CYymSVlRyS4sy2VOGFCSIZkEARhro4=
Subject key identifier: 2C:2B:B5:F8:E3:C5:48:FA:BF:EC:DA:90:6F:91:EC:02:CA:14:4B:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 2B1D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D10C2BA608F811EE820922314AD9E6FC.roa
Signing time: Mon 12 Jun 2023 08:12:05 +0000
ROA not before: Mon 12 Jun 2023 08:12:01 +0000
ROA not after: Sat 25 May 2024 08:12:01 +0000
asID: 131178
IP address blocks: 45.201.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11037 (0x2b1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 12 08:12:01 2023 GMT
Not After : May 25 08:12:01 2024 GMT
Subject: CN=6486d355-a048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f1:de:0e:00:4e:af:36:08:cb:e1:4d:be:a5:
a7:46:af:cd:b5:40:77:b8:d6:bb:2a:49:56:a4:80:
42:4a:5f:27:ca:73:1f:52:a0:64:86:c5:8c:d3:41:
3c:d6:91:fa:2f:66:a2:cb:68:99:ad:1e:0b:be:b0:
85:22:4e:23:cf:e9:89:62:12:92:cc:ca:e9:15:22:
de:d8:79:a3:0d:d3:52:cb:42:1a:fd:02:67:d1:17:
f2:73:3c:96:37:fb:e2:52:13:f7:a4:27:29:86:9e:
9d:72:e0:7d:ac:b5:8f:86:93:0b:b0:5a:38:1f:fa:
88:86:a6:cb:36:35:c9:4b:87:b0:67:35:58:43:b5:
f9:37:d4:6d:34:f5:44:7a:0c:64:d5:ad:de:7b:57:
25:41:f8:91:3e:cf:8b:1c:a2:70:53:c2:30:79:7b:
cb:a9:c5:79:a2:cc:ec:3f:b3:ba:a6:e8:07:f1:08:
a8:19:ba:04:a5:68:61:71:fb:60:39:5c:2a:42:0f:
b6:85:ec:a4:4b:d6:ec:2f:4e:39:a5:f9:05:d5:f1:
e4:3f:94:48:74:4b:bd:10:d4:7d:86:f9:0c:bb:4a:
93:dd:d6:f6:99:c8:e9:ed:32:71:b6:2b:29:f7:f5:
df:a8:4e:2a:a2:46:3e:5a:5e:b8:ba:7e:b7:a5:3d:
b0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:2B:B5:F8:E3:C5:48:FA:BF:EC:DA:90:6F:91:EC:02:CA:14:4B:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D10C2BA608F811EE820922314AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.181.0/24
Signature Algorithm: sha256WithRSAEncryption
45:48:5c:80:cc:e8:81:40:9f:17:58:c6:ae:9d:1e:22:a1:43:
f5:5c:09:9a:a3:2d:5c:95:e7:34:6b:65:c3:e8:a8:a6:62:36:
ee:90:4f:97:55:d2:4e:d8:b5:9c:c9:69:c6:b0:c3:0c:c2:3f:
01:77:63:99:00:71:6c:eb:45:a4:a6:49:d6:58:03:38:43:98:
6f:34:d9:44:be:e9:a7:e5:28:4b:e9:c9:2d:30:ee:81:b3:98:
94:19:33:7b:cd:57:74:94:bc:67:3c:73:03:0e:14:d6:a6:b1:
1f:99:40:2a:c7:0e:72:05:ed:68:d8:ca:74:3f:14:9a:fb:61:
29:49:97:12:db:f4:e2:83:96:bd:eb:05:84:fc:5f:49:ad:b1:
88:cd:1a:a6:9a:52:9b:0d:f3:3d:e6:5f:6e:37:20:b1:1c:8e:
4f:ac:78:59:16:19:41:4a:03:2f:27:fb:99:0c:fc:18:e6:ce:
25:cb:06:57:8a:18:48:f8:6d:be:64:85:7b:a8:d7:8e:e1:a1:
74:79:1b:72:e2:38:a0:e9:3e:5d:12:1f:2d:31:d8:4a:af:81:
2b:5f:b4:b8:17:1e:d3:65:b6:ec:cd:0b:81:95:cb:fb:f5:df:
ec:1b:f2:7e:02:25:2a:1f:b1:a3:a2:b7:42:75:5f:7f:80:60:
ef:99:f4:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 01:30:17 2024 by rpki-client on console-fra.rpki-client.org